High-order Markov kernels for intrusion detection

被引：15

作者：

Yin, Chuanhuan ^{[1
]}

Tian, Shengfeng ^{[1
]}

Mu, Shaomin ^{[1
,2
]}

机构：

[1] Beijing Jiaotong Univ, Sch Comp & Informat Technol, Beijing 100044, Peoples R China

[2] Shandong Agr Univ, Sch Informat Sci & Engn, Tai An 271018, Shandong, Peoples R China

来源：

NEUROCOMPUTING | 2008年 / 71卷 / 16-18期

关键词：

Markov kernels; String kernels; Intrusion detection; Suffix tree;

D O I：

10.1016/j.neucom.2008.04.041

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

In intrusion detection systems, sequences of system calls executed by running programs can be used as evidence to detect anomalies. Markov chain is often adopted as the model in the detection systems, in which high-order Markov chain model is well suited for the detection, but as the order of the chain increases, the number of parameters of the model increases exponentially and rapidly becomes too large to be estimated efficiently. In this paper, one-class support vector machines (SVMs) using high-order Markov kernels are adopted as the anomaly detectors. This approach solves the problem of high-dimension parameter space. Furthermore, a rapid algorithm based on suffix tree is presented for the computation of Markov kernels in linear time. Experimental results show that the SVM with Markov kernels can produce good detection performance with low computational cost. (C) 2008 Elsevier B.V. All rights reserved.

引用

页码：3247 / 3252

页数：6

共 50 条

[41] Unsupervised image segmentation based on high-order hidden Markov chains
Derrode, S
Carincotte, C
Bourennane, S
2004 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH, AND SIGNAL PROCESSING, VOL V, PROCEEDINGS: DESIGN AND IMPLEMENTATION OF SIGNAL PROCESSING SYSTEMS INDUSTRY TECHNOLOGY TRACKS MACHINE LEARNING FOR SIGNAL PROCESSING MULTIMEDIA SIGNAL PROCESSING SIGNAL PROCESSING FOR EDUCATION, 2004, : 769 - 772
[42] High-order moment stabilization for Markov jump systems with attenuation rate
Zhou, Ziheng
Luan, Xiaoli
Liu, Fei
JOURNAL OF THE FRANKLIN INSTITUTE-ENGINEERING AND APPLIED MATHEMATICS, 2019, 356 (16): : 9677 - 9688
[43] Recursive estimation of high-order Markov chains: Approximation by finite mixtures
Karny, Miroslav
INFORMATION SCIENCES, 2016, 326 : 188 - 201
[44] Tensor approach to mixed high-order moments of absorbing Markov chains
Nemirovsky, Danil
LINEAR ALGEBRA AND ITS APPLICATIONS, 2013, 438 (04) : 1900 - 1922
[45] Research of Spread Spectrum Steganography based on High-order Markov Model
Wu, Kaicheng
2016 INTERNATIONAL CONGRESS ON COMPUTATION ALGORITHMS IN ENGINEERING (ICCAE 2016), 2016, : 84 - 89
[46] A Novel Method for Decoding Any High-Order Hidden Markov Model
Ye, Fei
Wang, Yifei
DISCRETE DYNAMICS IN NATURE AND SOCIETY, 2014, 2014
[47] VISUAL TRACKING USING HIGH-ORDER MONTE CARLO MARKOV CHAIN
Pan, Pan
Schonfeld, Dan
2008 15TH IEEE INTERNATIONAL CONFERENCE ON IMAGE PROCESSING, VOLS 1-5, 2008, : 2636 - 2639
[48] A study on high-order hidden Markov models and applications to speech recognition
Lee, Lee-Min
Lee, Jia-Chien
ADVANCES IN APPLIED ARTIFICIAL INTELLIGENCE, PROCEEDINGS, 2006, 4031 : 682 - 690
[49] A Multivariate High-Order Markov Model for the Income Estimation of a Wind Farm
De Blasis, Riccardo
Masala, Giovanni Batista
Petroni, Filippo
ENERGIES, 2021, 14 (02)
[50] Augmented Physics-Based Models for High-Order Markov Filtering
Tang, Shuo
Imbiriba, Tales
Duník, Jindřich
Straka, Ondřej
Closas, Pau
Sensors, 2024, 24 (18)

← 1 2 3 4 5 →